Identity, Credential, and Access Management Functional Architect in Washington, DC at Booz Allen Hamilton Inc.

Date Posted: 8/7/2018

Job Snapshot

Job Description

Job Number: R0030442

Identity, Credential, and Access Management Functional Architect

Key Role:

Maintain responsibility for supporting identity life cycle management, credentialing, smart cards, including PIV and PIV-I, user attestation, compliance, and role discovery or management. Maintain responsibility for single sign-on, enterprise authentication, authorization policies, and multi-factor authentication supporting different access control models and different devices, including desktop and mobile. Leverage knowledge of HSPD-12, PIV, CAC, FIPS 201, FICAM, NIST SP 800-53, FISMA, NSTIC, and other federal ICAM-related directives, standards, and mandates. Leverage expertise with BeanShell, Java, JavaScript, or other programming languages for the customization and development of ICAM systems and services.


Basic Qualifications:
-4+ years of experience with designing, architecting, implementing, operating, and maintaining identity management solutions supporting identity life cycle management, access request and fulfillment, access certifications, compliance, and role discovery and management or access control solutions, including single sign on, enterprise authentication, authorization policies, and multi-factor authentication supporting different access control models and different devices, such as desktop or mobile
-Experience with Windows or Linux servers
-Experience with directory services, LDAP, and Web application servers
-Experience with HSPD-12, PIV, CAC, FICAM, NIST SP 800-63, FISMA, and other federal ICAM-related directives, standards, and mandates
-Experience with SQL language
-Knowledge of client and server Group Policy Objects (GPOs)
-Knowledge of PKI, PKE, and x.509 certificates and their use with smartcards, including Personal Identity Verification (PIV) cards
-Ability to obtain a security clearance
-BA or BS degree


Additional Qualifications:
-Experience with Security Assertion Markup Language (SAML) identity federation solutions
-Experience with training end users and business process engineering or optimization
-Experience with Java or other object-oriented programming languages for light customization and development of ICAM systems and services a plus
-Experience with Apache Tomcat and Microsoft IIS preferred
-Knowledge of relational databases a plus
-Knowledge of Active Directory domain, preferred
-Knowledge of USAccess, HRConnect, SailPoint IdentityIQ, SecureAuth IdP, and the Salesforce platform preferred


Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.


We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

SIG2017

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.